Senior Security Risk Management Analyst Location : Palo Alto, CA 94304 Duration : 6 Months ... This team focuses on analyzing and managing risks associated with our vendors, service providers ...
New
Quick apply
Senior Security Risk Management Analyst Location : Palo Alto, CA 94304 Duration : 6 Months ... This team focuses on analyzing and managing risks associated with our vendors, service providers ...
New
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
Enterprise Risk Analyst
Denver, CO · On-site
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
Enterprise Risk Analyst
Denver, CO · On-site
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... ThirdParty / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... ThirdParty / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously ...
Vendor Risk Management (VRM) * Ensure consistent, high-quality execution of the third-party risk ... senior leadership in a clear, concise manner. * Strong planning, prioritization, and execution ...
Vendor Risk Management (VRM) * Ensure consistent, high-quality execution of the third-party risk ... senior leadership in a clear, concise manner. * Strong planning, prioritization, and execution ...
Risk Management: Identify and mitigate risks associated with vendor services and agreements ... senior management. * Best Practices: Develops policies and procedures based on expertise to ...
Quick apply
Risk Management: Identify and mitigate risks associated with vendor services and agreements ... senior management. * Best Practices: Develops policies and procedures based on expertise to ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... Third-Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... Third-Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... Third‑Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and ...
Quick apply
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional ... Third‑Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
... vendor governance, risk management and oversight frameworks in complex, regulated environments ... Effectively communicates expectations, influences senior stakeholders, and gains alignment across ...
Head of Technology Risk Management
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Head of Technology Risk Management
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Head of Technology Risk Management
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Head of Technology Risk Management
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Head of Technology Risk Management
Parsippany, NJ · On-site
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Head of Technology Risk Management
Parsippany, NJ · On-site
$164K - $266K/yr
... vendor risk assessments, ongoing monitoring, escalations, and remediation. * Proactively manage, communicate and escalate issues to senior leadership as needed. * Review and approval of Risks ...
Risk Management: Identify and mitigate risks associated with vendor services and agreements ... senior management. * Best Practices: Develops policies and procedures based on expertise to ...
Risk Management: Identify and mitigate risks associated with vendor services and agreements ... senior management. * Best Practices: Develops policies and procedures based on expertise to ...
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Collaborate with vendor management tool partner to ensure timely and efficient completion of vendor risk assessments. Perform review of the Third-Party Risk Management Policy and propose updates to ...
Collaborate with vendor management tool partner to ensure timely and efficient completion of vendor risk assessments. Perform review of the Third-Party Risk Management Policy and propose updates to ...
Vendor Analyst, AI & Technology Risk
Iowa, LA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Iowa, LA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Senior Vendor Risk Management information
See salary details
$22.5K - $39.5K
2% of jobs
$39.5K - $56.6K
2% of jobs
$56.6K - $73.6K
12% of jobs
$84K is the 25th percentile. Wages below this are outliers.
$73.6K - $90.7K
15% of jobs
$90.7K - $107.7K
16% of jobs
The median wage is $111.1K / yr.
$107.7K - $124.8K
16% of jobs
$139.9K is the 75th percentile. Wages above this are outliers.
$124.8K - $141.8K
14% of jobs
$141.8K - $158.9K
9% of jobs
$158.9K - $175.9K
10% of jobs
$175.9K - $193K
3% of jobs
$193K - $210K
2% of jobs
$22.5K
$118.3K
$210K
How much do senior vendor risk management jobs pay per year?
As of Jun 25, 2026, the average yearly pay for senior vendor risk management in the United States is $118,258.00, according to ZipRecruiter salary data. Most workers in this role earn between $84,500.00 and $145,000.00 per year, depending on experience, location, and employer.
What does a Senior Vendor Risk Management professional do?
A Senior Vendor Risk Management professional is responsible for overseeing an organization’s third-party vendors to identify, assess, and mitigate risks that could impact business operations, data security, or regulatory compliance. They develop and implement vendor risk assessment frameworks, conduct thorough due diligence, and collaborate with other departments to ensure vendors meet company standards and legal requirements. Additionally, they monitor ongoing vendor relationships, manage risk remediation efforts, and often report findings to senior leadership or regulatory bodies.
What are the key skills and qualifications needed to thrive as a Senior Vendor Risk Management professional, and why are they important?
To thrive as a Senior Vendor Risk Management professional, you need expertise in risk assessment, third-party due diligence, and a solid understanding of regulatory compliance, often supported by a bachelor's degree in business, finance, or a related field. Familiarity with risk management platforms, vendor management systems, and certifications like CISA or CRVPM is commonly expected. Strong analytical thinking, communication, and negotiation skills are crucial for building effective relationships and addressing vendor issues. These skills and qualifications are essential for mitigating risks, ensuring compliance, and safeguarding organizational interests in vendor relationships.
What are some common challenges faced by Senior Vendor Risk Management professionals, and how can they be addressed?
Senior Vendor Risk Management professionals often encounter challenges such as navigating complex regulatory requirements, managing relationships with a diverse range of vendors, and ensuring consistent due diligence across all third parties. Addressing these challenges typically involves staying updated on relevant regulations, implementing robust risk assessment frameworks, and fostering strong communication with both internal stakeholders and vendors. Building cross-functional collaboration with legal, compliance, and procurement teams is also crucial for effectively mitigating vendor-related risks.
What is the difference between Senior Vendor Risk Management vs Vendor Risk Analyst?
| Aspect | Senior Vendor Risk Management | Vendor Risk Analyst |
|---|---|---|
| Certifications | CRISC, CISA, or similar | CRISC, CISA, or similar |
| Work Environment | Strategic, leadership-focused, cross-departmental | Operational, data analysis, risk assessment |
| Employer & Industry Usage | Financial, healthcare, technology firms | Financial, retail, technology sectors |
Senior Vendor Risk Management roles typically involve strategic oversight and leadership in managing vendor risks, requiring advanced certifications and experience. Vendor Risk Analysts focus on data collection, risk assessment, and supporting vendor evaluations. While both roles require similar credentials, the senior role emphasizes strategy and management, whereas the analyst role is more operational and detail-oriented.
More about Senior Vendor Risk Management jobs
What cities are hiring for Senior Vendor Risk Management jobs? Cities with the most Senior Vendor Risk Management job openings:
What are the most commonly searched types of Vendor Risk Management jobs? The most popular types of Vendor Risk Management jobs are:
What states have the most Senior Vendor Risk Management jobs? States with the most job openings for Senior Vendor Risk Management jobs include:
What job categories do people searching Senior Vendor Risk Management jobs look for? The top searched job categories for Senior Vendor Risk Management jobs are:
Full-time
Medical, Dental, Vision, Retirement
Posted yesterday
Job description
Senior Security Risk Management Analyst
Location : Palo Alto, CA 94304
Duration : 6 Months
Description:
Client is seeking an experienced professional to join our Third-Party/ Vendor Risk Assessment team. This team focuses on analyzing and managing risks associated with our vendors, service providers, and other third parties, ensuring our organization upholds the highest standards of compliance, security, and business resilience. While your primary responsibility will be Third-Party Risk Management, you will also collaborate on other cybersecurity risk management initiatives. Building strong cross-functional relationships across the company is a key component of this role. To excel, you must showcase exceptional leadership, communication, and decision-making skills, and have a proven track record in managing third-party risk, vendor governance, or related domains.
Responsibilities:
- Lead and conduct comprehensive risk assessments of new and existing third-party vendors and service providers, focusing on cybersecurity, and regulatory compliance.
- Evaluate third-party security questionnaires, audit reports (e.g., SOC 2, ISO 27001), and risk documentation.
- Coordinate with vendors to request and verify security controls, remediation plans, and ongoing compliance.
- Oversee facilitation of risk remediation efforts agreed upon with suppliers, ensuring timely resolution.
- Collaborate during supplier contract development, reviewing deviations from security requirements and offering subject matter expertise on risk remediation.
- Classify vendors according to risk tiers and maintain a comprehensive database of vendor risk profiles.
- Participate in continuous security monitoring of existing suppliers to track changing risk profiles.
- Partner with Procurement, Legal, Privacy, and InfoSec teams to improve supplier security management processes.
- Identify opportunities to automate parts of the assessment process, thereby reducing manual work and enhancing efficiency.
- Keep abreast of emerging risks, industry standards, and regulatory requirements affecting third-party vendors.
- Contribute to broader cybersecurity risk management initiatives, including identifying, assessing, and tracking information security risks beyond the third-party domain.
- Provide guidance and knowledge transfer to team members, supporting a collaborative team environment.
Preferred Qualifications:
- Bachelors degree in Computer Science, Information Security, Cybersecurity, Risk Management, or a related field.
- 6-8 years of professional experience in third-party risk assessment within cybersecurity or information risk management.
- Understanding of relevant information security frameworks, including related regulatory compliance requirements, such as ISO 27001/2 (including ISO 27017 & 18), FedRAMP, SOC 2 Trust Services Criteria, PCI DSS, NIST CSF.
- Solid understanding of risk assessment methodologies and best practices.
- Ability to synthesize and communicate complex risk findings to both technical and non-technical audiences.
- Detail-oriented, process-driven, and capable of managing multiple vendor assessments concurrently.
- Experience with tools such as Coupa, OneTrust, JIRA and Coverbase is a plus.
- Professional certifications in Information Security or Risk Management (e.g. CISA, CISM, CISSP, CRISC) is a plus.
#TB_EN
#ZR
#Linkd
Why TalentBurst?
At TalentBurst, we deliver more than talent, we deliver outcomes. We partner with you to move quickly and connect you to opportunities aligned with your skills and long term growth.
Backed by precision, transparency, and results, we connect top talent with leading organizations through trusted partnerships.
We offer competitive compensation and comprehensive benefits, including medical, dental, vision, and retirement options.
TalentBurst is an equal opportunity employer committed to an inclusive and diverse workforce.
Company Description
Founded in 2002 by three former Monster.com executives; TalentBurst is an award-winning full-service Staffing Firm working directly with Fortune 500 companies in the US and Canada. We specialize in Contract and Contract to Permanent roles across many industries and have direct/contractual relationships with all our clients. Please visit our website www.talentburst.com or come meet us at our offices in Natick, MA, Miami, FL, Christiansburg, VA, Vineland, NJ, Houston, TX & downtown San Francisco, CA
About TalentBurst
Sourced by ZipRecruiter
TalentBurst is a leading provider of Information Technology and Engineering staffing solutions based in Natick, Massachusetts, US. An industry veteran with two decades of experience in their portfolio, the company's services range from IT consulting, life sciences, HR solutions, payroll services, and more. TalentBurst was founded with a mission to provide world-class, global staffing services to clients of all sizes. They strive to provide unmatched quality and service to their clients, which has earned them the reputation of being a highly respected and trusted staffing firm.
Industry
Recruiting and staffing services
Company size
51 - 200 Employees
Headquarters location
Natick, MA, US
Year founded
2002